$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.mft File: r_zmN5iBZebFG_v-vRKD1REkAZA.mft (raw, json) Hash identifier: g/b0SwOaYdj85mtVp2dmay2Z4kqjQoUtT4NqTJZWO0M= Subject key identifier: 6C:9B:C1:19:4D:C7:F2:E3:68:F1:DE:87:5D:AA:61:99:80:E4:AC:49 Authority key identifier: AF:FC:E6:37:98:81:65:E6:C5:1B:FB:FE:BD:12:83:D5:11:24:01:90 Certificate issuer: /CN=A91E4468/serialNumber=AFFCE637988165E6C51BFBFEBD1283D511240190 Certificate serial: 01E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_zmN5iBZebFG_v-vRKD1REkAZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.mft Manifest number: 01BF Signing time: Wed 25 Mar 2026 03:15:13 +0000 Manifest this update: Wed 25 Mar 2026 03:15:13 +0000 Manifest next update: Wed 01 Apr 2026 03:15:13 +0000 Files and hashes: 1: r_zmN5iBZebFG_v-vRKD1REkAZA.crl (hash: DLqg9iz2dmjzsJLPlyo0ftt7UYHkBZdNAFW30IH4zts=) 2: C531DD12226F11EF8D24AD63C4F9AE02.roa (hash: 4apUkb/9OAkWGMu7J3h8tdbWlfEZR8ZKAMbBcPjKoaU=) 3: C608133C226F11EF8D24AD63C4F9AE02.roa (hash: ySADP91L9zzRBTSfDoHJ50+Ik7XzeYcUmFcCyfVbDoY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.crl rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_zmN5iBZebFG_v-vRKD1REkAZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:15:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 485 (0x1e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4468, serialNumber=AFFCE637988165E6C51BFBFEBD1283D511240190 Validity Not Before: Mar 25 03:15:13 2026 GMT Not After : Apr 1 03:15:13 2026 GMT Subject: CN=69c35341-8aed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:81:26:8c:26:86:7e:5c:b1:7c:df:49:98:64: d1:62:13:42:30:75:4a:58:11:92:25:76:5b:92:fa: b3:e3:a8:69:fd:05:8c:1c:02:51:fd:66:bc:6e:15: e8:95:aa:61:38:8d:f7:8b:58:8e:b0:f3:1c:f5:c8: 6e:c8:bf:f2:a4:ec:b1:9c:96:73:9b:2e:8d:64:bf: 8c:0e:04:65:87:da:c8:46:0b:be:08:7f:e1:b7:a0: 85:f6:fe:9f:8b:a6:0b:ae:00:ea:0e:a8:99:51:b8: 6a:15:f3:69:91:04:f8:e7:09:05:78:6a:3c:66:4d: 66:ab:06:c1:80:b9:e8:e5:35:9c:cc:e0:37:db:38: 89:06:9b:f2:f6:07:25:d6:ea:09:3e:87:47:c4:c7: 61:c0:86:ec:d4:d2:a9:b7:1c:7b:3f:c7:7c:ea:0d: a0:1c:e9:fd:88:6a:bb:ce:b8:f6:f1:d1:06:a7:d4: 98:09:33:ac:3f:33:1b:85:da:ae:63:ed:60:9a:1a: 17:3d:1f:c2:3a:d1:41:cb:ca:c1:85:b4:3f:f7:f5: ba:1b:06:ad:72:d5:92:6d:a5:03:32:32:8d:3c:5c: 2f:ef:f4:a7:e2:9b:13:ab:3d:16:b4:9d:91:e7:d8: d2:48:7d:e9:0c:68:49:f6:e0:da:fb:e8:1c:aa:28: d5:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:9B:C1:19:4D:C7:F2:E3:68:F1:DE:87:5D:AA:61:99:80:E4:AC:49 X509v3 Authority Key Identifier: keyid:AF:FC:E6:37:98:81:65:E6:C5:1B:FB:FE:BD:12:83:D5:11:24:01:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_zmN5iBZebFG_v-vRKD1REkAZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:0d:0b:09:cc:98:29:a2:96:ea:db:16:93:a4:91:6d:58:c5: 36:35:20:4e:f6:fd:0a:8e:c7:65:90:96:6f:02:99:af:db:f6: c5:48:ad:5c:52:6a:19:b3:b1:f7:20:18:05:8b:38:08:9b:ec: e2:00:8b:6f:63:e6:0b:25:5f:b9:9a:75:d3:37:b7:63:5d:0c: 10:c9:f7:4b:df:b5:92:c3:c1:21:38:2d:b6:01:fd:48:29:7e: 79:d9:a9:ac:6d:b4:74:5c:b3:08:17:82:d9:37:4c:3d:32:ce: 3a:eb:51:26:f5:70:ff:4c:c7:a9:15:c3:d1:0a:0f:20:58:d4: 97:b0:d6:fe:b5:72:bb:a5:e6:05:0d:68:6d:02:91:7e:3b:1e: 42:39:d3:9f:3a:77:0f:e9:32:ef:59:45:d7:b5:61:c5:d6:ce: 64:77:4c:42:55:fa:fe:d1:6c:ef:d5:93:88:60:01:41:15:f6: c7:7f:23:bd:af:ec:1f:98:14:bb:fe:57:15:f9:9d:7d:73:28: b4:28:2f:72:c8:0f:4c:32:92:19:85:9a:3e:f7:79:da:8f:e6: 7e:99:07:ba:1c:59:61:d6:c5:c0:c8:06:54:8d:67:e2:be:0e: db:2f:63:c2:79:82:d8:8f:b1:34:d2:ca:63:1b:60:0c:c0:c1: 07:ef:85:74 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAeUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ0NjgxMTAvBgNVBAUTKEFGRkNFNjM3OTg4MTY1RTZDNTFCRkJGRUJEMTI4M0Q1 MTEyNDAxOTAwHhcNMjYwMzI1MDMxNTEzWhcNMjYwNDAxMDMxNTEzWjAYMRYwFAYD VQQDEw02OWMzNTM0MS04YWVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtoEmjCaGflyxfN9JmGTRYhNCMHVKWBGSJXZbkvqz46hp/QWMHAJR/Wa8bhXo laphOI33i1iOsPMc9chuyL/ypOyxnJZzmy6NZL+MDgRlh9rIRgu+CH/ht6CF9v6f i6YLrgDqDqiZUbhqFfNpkQT45wkFeGo8Zk1mqwbBgLno5TWczOA32ziJBpvy9gcl 1uoJPodHxMdhwIbs1NKptxx7P8d86g2gHOn9iGq7zrj28dEGp9SYCTOsPzMbhdqu Y+1gmhoXPR/COtFBy8rBhbQ/9/W6GwatctWSbaUDMjKNPFwv7/Sn4psTqz0WtJ2R 59jSSH3pDGhJ9uDa++gcqijVuwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGybwRlN x/LjaPHeh12qYZmA5KxJMB8GA1UdIwQYMBaAFK/85jeYgWXmxRv7/r0Sg9URJAGQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDQ2OC84Mjc1MjRFODhF RTUxMUVFQTJFRUREMTJDNEY5QUUwMi9yX3ptTjVpQlplYkZHX3YtdlJLRDFSRWtB WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Jfem1ONWlCWmViRkdfdi12UktEMVJFa0FaQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDQ2OC84Mjc1MjRFODhFRTUxMUVFQTJFRUREMTJDNEY5QUUwMi9yX3ptTjVpQlpl YkZHX3YtdlJLRDFSRWtBWkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAjg0LCcyYKaKW6tsWk6SRbVjFNjUgTvb9Co7HZZCWbwKZr9v2xUitXFJqGbOx 9yAYBYs4CJvs4gCLb2PmCyVfuZp10ze3Y10MEMn3S9+1ksPBITgttgH9SCl+edmp rG20dFyzCBeC2TdMPTLOOutRJvVw/0zHqRXD0QoPIFjUl7DW/rVyu6XmBQ1obQKR fjseQjnTnzp3D+ky71lF17VhxdbOZHdMQlX6/tFs79WTiGABQRX2x38jva/sH5gU u/5XFfmdfXMotCgvcsgPTDKSGYWaPvd52o/mfpkHuhxZYdbFwMgGVI1n4r4O2y9j wnmC2I+xNNLKYxtgDMDBB++FdA== -----END CERTIFICATE-----Generated at Thu Mar 26 04:13:35 2026 by rpki-client